Flows Not Covered by HIPAA

The Health Information Portability and Accountability Act (HIPAA) is the federal privacy regulation in the United States that governs the sharing of patient information. More than half the flows of personal health information documented on the HealthDataMap are not covered by HIPAA. For more information, see sharing risks.

Flows Not Directly with You

More than half the flows of personal health information documented on the HealthDataMap are not directly with you.

Hidden Flows Can Harm You

Hidden data flows can expose you to possible harms. For example, the HealthDataMap shows loops where your employer or bank may have personal health information about your health without your knowledge. The dashed lines means the information provided does not have your name, but that does not necessarily mean you cannot be identified in the data. For more information, see sharing risks.